CVE-2025-20054

EPSS 0.04%

Published: 5/13/2025Modified: 4/28/2026

Also known as:ALPINE-CVE-2025-20054DEBIAN-CVE-2025-20054

Description

Uncaught exception in the core management mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access.

Affected packages (2)

Alpine/intel-ucodefrom 0, < 20250512-r0
Debian/intel-microcodefrom 0, < 3.20250512.1~deb11u1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2025-20054
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-20054